Hacker News new | ask | show | jobs
by nonane 797 days ago
Has anyone done an analysis of the bug in the backdoor that caused valgrind errors and slowness in SSH which eventually exposed it?
1 comments
lyu07282 797 days ago
Invalid memory write apparently: https://www.mail-archive.com/valgrind-users@lists.sourceforg... The valgrind "fix" was to disable ifunc which disabled the backdoor so the errors went away.

The slowness derived from all the symbol and instruction lookups it did afaik

link
itomato 797 days ago
Oxide and Friends interviewed Andres Freund for their show on Wednesday where he discussed the discovery, including the slowness from all the symbol translations

https://open.spotify.com/episode/0C04JlCpMFe07C1XCswbZ9?si=B...

link
Aachen 797 days ago
Not everyone has Spotify, better just link their own site where you can play it directly: https://oxide.computer/podcasts/oxide-and-friends/1843393
link
itomato 797 days ago
Handier for sure, but not on my clipboard
link